Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1ccc8d004a0b8f62ee4b35065767e34afd54e04e5912eec28689301996dd0201

  • Size

    264KB

  • Sample

    240803-hmxkcawcqj

  • MD5

    63393a2444718685acb3745e8a64fb23

  • SHA1

    6aa5b519e7eecda9218730cdad2033b72ad48743

  • SHA256

    1ccc8d004a0b8f62ee4b35065767e34afd54e04e5912eec28689301996dd0201

  • SHA512

    c95f501801182730e894ae0152a60b4ab93d31c4bd9b2c4cc76b2d0a73f06fcf7969d5a8399b31d58c62f11e75ead9ff843b95b03ca346143b990b17cce41483

  • SSDEEP

    3072:20aY46tGNttyeQLYm1LLRkgUA1nQZwFGVO4Mqg+WDY:L46tGdye41LLRp1nQ4QLd

Malware Config

Targets

    • Target

      1ccc8d004a0b8f62ee4b35065767e34afd54e04e5912eec28689301996dd0201

    • Size

      264KB

    • MD5

      63393a2444718685acb3745e8a64fb23

    • SHA1

      6aa5b519e7eecda9218730cdad2033b72ad48743

    • SHA256

      1ccc8d004a0b8f62ee4b35065767e34afd54e04e5912eec28689301996dd0201

    • SHA512

      c95f501801182730e894ae0152a60b4ab93d31c4bd9b2c4cc76b2d0a73f06fcf7969d5a8399b31d58c62f11e75ead9ff843b95b03ca346143b990b17cce41483

    • SSDEEP

      3072:20aY46tGNttyeQLYm1LLRkgUA1nQZwFGVO4Mqg+WDY:L46tGdye41LLRp1nQ4QLd

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks